VidSearch is a typical browser hijacker: it promotes the address of a fake search engine by modifying certain browser settings. In this case, it assigns them to vid-search.com. As well as hijacking browsers, these apps often record data. Browser hijackers are categorized as potentially unwanted ap
Nuzzero hijacks web browsers by changing certain settings to nuzzero.com (the address of a fake search engine). It is also likely that this app collects information relating to users' browsing habits. Generally, people download and install browser hijackers inadvertently and, therefore, they are c
Wabot is a malicious program, malware classified as an Internet Relay Chat (IRC) worm. Software within the worm classification is typically self-proliferating. I.e., it copies itself from one location to another, such as from directories, drives, systems or networks, to other corresponding locatio
TheMaskSearch is a browser hijacker which promotes themasksearch.com by changing certain browser settings. Like most URLs promoted by apps of this type, themasksearch.com is the address of a fake search engine. In most cases, browser hijackers gather browsing-related (and other) information. User
This malspam campaign is disguised as a message from a global audit, accounting and consulting group called Mazars. In fact, this company has nothing to do with this bogus email. The main purpose of this campaign is to trick recipients into opening the attached file, a malicious HTML file disguise
Upatre is a malicious program which operates as a backdoor Trojan (opens a 'backdoor' for other malware). Therefore, this rogue software can download and install additional malware (cause chain infections). These malicious programs are installed onto the compromised system and their actions depend
Discovered by Michael Gillespie, Dungeon belongs to the Xorist ransomware family. Like most other malware of this type, Dungeon encrypts files, changes filenames and creates a ransom message containing instructions about how to contact the cyber criminals, and various other details. This ransomwa
Vawe is malicious software belonging to the Djvu ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption tools/software. During the encryption process all affected files are appended with the ".vawe" extension. For example,
GhostSearch changes certain browser settings to ghost-search.com (the address of a fake search engine). Apps of this type tend to collect data relating to web browsing activities. These browser hijackers are often downloaded and installed unintentionally and are, therefore, categorized as potentia
news-back[.]best is similar to sombes[.]com, cooperativasantamargherita[.]com, click-to-win-prize[.]com and a number of other rogue web pages that display dubious content or redirect visitors to other bogus sites. Generally, users do not open sites such as news-back[.]best intentionally - in most